home

secure-dl.com

Domains By Proxy, LLC  (Proxy Registrant)

Domain Information

The domain secure-dl.com is registered by proxy through GODADDY.COM, LLC and was originally registered in November of 2014. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Scottsdale, Arizona within the United States which resides on the GoDaddy.com, LLC network.
Registrar:
GODADDY.COM, LLC

Server location:
Arizona, United States (US)

Create date:
Monday, November 10, 2014

Expires date:
Tuesday, November 10, 2015

Updated date:
Wednesday, November 19, 2014

ASN:
AS26496 AS-26496-GO-DADDY-COM-LLC - GoDaddy.com, LLC

Whois:
1 secure-dl.com record

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Appknowledge, PUP.Appknowledge.Installer (M), PUP.Air Software.DownloadAssistant.Bundler (M), PUP.Appknowl.Installer (M), PUP (M)
100.00%

AVG
Generic
6.00%

herdProtect (fuzzy)
a variant of 22ed5f96cb23e09b6a7f6ce28c9f60fc53d692ba, a variant of d1ec78b371954d3a4fb03895e5338bde6a0bebca
4.00%

Avira AntiVirus
W32/Sality.AG
2.00%

The domain secure-dl.com has been seen to resolve to the following 2 IP addresses.

50.63.202.47
ip-50-63-202-47.ip.secureserver.net
August 21, 2015

198.23.122.9
198.23.122.9-static.reverse.softlayer.com
March 6, 2015

File downloads found at URLs served by secure-dl.com.

1 / 68      (PUP)
http://secure-dl.com/.../process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhNVTCwuTgoNRwwtFSA6ITpaTiZSS0dRKF8sFk9ULlwqWTsPRkgAA2suTghHRlMvBGkyFyVaSm9TLX5cKUQQG3AGD1guGWsMCXw VwkOewN5PGEqLWQWYQQMdmF6ImZdEUA1Q3NxPhwVUTIGMnwqGR4OYBJ9BWUqLjs3JytpaWJtMw1EEW5uC2RfCBsGRmcHMkY5FxxoVhFnPEh0OT8BOhBpF2thM3lZKUcYB3NhbGMVcwQCPnMtBR0CaBZ9BXVzLgJqOy52fSV9MXp2AX4UNGNhF28vYxQcDGw5BCAZCxFVKxYtFi8OLRhQbShTLVBNKGkLCntYMV0uUgsTOkAfBiA3fCxUL3EvEBEOIRBmRz4VXg==&t=WGRZWBFNX3RoD0pRC0B QzBsZC5cSWsDAQMMKBM7FkgFOB4tCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIRMPQjRNPkkKIBwwGx5vWAhdN196DGMkPX54b2cLcTInP2IYJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../bX4OSWZTUVYHfkloS09QbEp8CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoWUhTUBZxFTI Zn8JH2MOU1VQKB5mQU0DOBF0CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIxAxCTddA1sJMDFuGiBsRwtgPE15MX9qPn5nNWUhemwzEmZeJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../QU0DPht5CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEkBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoCU0OCkYkQmVvMX8MTTQHU1INKE5sEEsEbRwtCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIQAYVyBgJREdIDUhGR1oQgtdCV5uJnMnPm13NXIISGokAk8HJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../Fx4Nax8tCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoX0lVUBYiETdiYi8GHWQPVFFVLRltQh4BaBwoCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWNykLQyMFIRIdMxwzGiBSQh9wP1l6JnA3PX10JWULZm4lP3oVJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoWEIEXRt2R2NpYHMJSzcBUAFWLx47RhhUbkp5CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/.../process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRbXB9VTCwuTgoNRwx1WSAyOjlKTj5bAEYaKEUzXEhFNAcoRCkEBEQOCns7WRlYHU0zHTJmZX4LHmERFlxbOV4wEkRQYEItXT9MC0oCHiUzXRRZCU4iSWdpYX0YWyBWC0dVKF43HEdqNExxGm5YWx5WW3VoDhgECRB1FmY5ZikHS2FRBwMDL05mVUZTO00 dDcOVRJYXGZh&t=WGRZWBFNX3RoCU8OXRJ1QDRoNXkMTWJVV1cNLxk4ER4COUx0CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoWE9UDkBwFmBpbXpYHmZTBgNSLkhnSxFXbx90CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/.../process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYWRNVTCwuTgoNRwwgESJ1MiNSSmFTAEdfP0UuXUpaMAcIRCkEBEQOCgk7VBtQDVFoMzMvazoDHmMEVwISLxdvRBEEag4gFm9cURNbSCpnC1xHGkwjATUvOitTSm99BEJVHlo6El1Qe0sgQj0BAU9SX3RoX0sDDEZ0RDBiZ3IIF2tUAAcMKk86RxhWPEl7DTsSDV4dAnkyTg5HTRAGUWQdcXh4XyBYEVFXPwc6HwdWMg1 bS4ZHFwdHmFofBNZBwZ1Mhw6IitrXzZWEVEaLlI7VU0AYBF7GXgOWRZeXHFtGEE=&t=WGRZWBFNX3RoX0sDDEZ0RDBiZ3IIF2tUAAcMKk86RxhWPEl7CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIAA5CCBjORcKGQNvDR1zHQtdPAdtH0Y1PVN8J2cLbTYkLHJaJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../RjNjNSkITWQABA1QfBhtS0hUaR51CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhlVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFG0QCQDQySkVeK0wjEWs/HABWTTx5DW0HGVo8QRxTPH8dEhM KVIhKRIzdD5fBG0tED0WEAdJYShmEnpwHUMQN0oAB0IBGQQ BEAlAwI3YBdbG0IQMmYBAnNOdRYHHXleHhkUHhBYB0UaUgZYBEA/Oi9pdxNtBnkQTG8NAgdTTT9xEW5gemEHK3NdC3AOQAcyOkclAxJuYC4GB0cPJiERAAR8ZQZ9In5gAW09O2NDOW8aQTopWUANLXEwWANiEXEpNiw/.../ZHkOGGYHUQFWfx1nFRoDOBEoCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoCUwDCxB1QmdpNy8KH2pWXANSex9uShwGOUx7CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWNCkfQCNjORYdHhQyGx5/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEkBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoXBsECRd EmY5bXoHFmFVVlVQch9nEkoBaBx5CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoXh8FDBEhRWM ZSxdF2QEVAVVLR1qEhsBbxp1CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoX0hTWEckEW45ZCtfHmVVAwBQKk5rREpUZUt0CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEkBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoAkpWXkJwTGVjYS5aS2EPUFFSex5nQhACaxEoCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIHYMVzVjORcIIAQ2DXhzVx1jDgd5eXw2KUNgaGcbbm4nLGoWJCkcVyBaBFAmIxBrDhwHXwhzVUx5MXNuOUQMMHIhfScyWkcEPhA9TTd0Mk0dI25iBxxvQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../TWI9NykPFmsAVlFVLR9nSkgBbRh CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWICkPTTRjCxcJRgNrGw5VGhxNMEN5IU1uPkR8aHEmaiQzPEcDJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../QzNvbHMHGGcHVwwAeUhnERkGPBEpCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIQAAUzVjIkseHh8sGQ5/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoAkxVUREmFmRrZHoGG2oGVgEMfB1pRB0DZUt0CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWID4bDzRaMRcJGRNuGg1sRB9NJ11uJmcpPUNSb3E2YTQwAk8GJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../QjdiYC5aHGJVA1cEfRJoEBtWOx8uCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEkBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoDBgEXBR0EGJqY3tbTGYPXVYMfk87Rh4EOR0qCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoDUIHXUIiRWduYHhYTWAPXVBWehhuQhoHbRwpCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../EWZjMHldF2pUUAJXeE5nRkhUbBB9CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoC01UWEZyRWBqbXgGHzNTUFJWLhNqShEDbxsoCWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/process.php?n=WGRbWBFNBCUsWw9HDEIzEXRg&i=WGRYXhhVTCwuTgoNRwwtFSA6ITpaTiZSS1BYZk43AUxWKQYvRDNFHF8dHmoqUgoIAWAoEDNmMAJ0RzBZK1xteHguERsAO0kbemcnPGoWIBMUVjRwOREKHhQxGx1zVx9dPAVuDH8kPX1/NWYmamowLGJaJCkcVyBaBFAmIxBrDhwHXwhzVUx5IX9tOUQMMHIhfScyWkcEPhAxCTdeMk0dI25iAhxzQjBaI0BuHxsVKnFvNX4UaTUzMHkDJCkMDiBjWUwjPAQsHh5wbRhjL3N H2AZEGF/.../RRkNORp1CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../FTJsN39cFjYFBwwDKkhmEE1QOxh6CWU=  (javaupdate.exe)

1 / 68      (PUP)
http://secure-dl.com/prwrp/.../K0wLfTQOKxoEDAdvUBhOPVoVGhQhMAJaVjF0ME1mJkYrEVBgJHonWzYOBW05DQMIUh5wPVYdLD43dnE=&t=WGRZWBFNX3RoC0JWXEd3RGI6Yn0NSWcPVQRXeB5qRxoHbh0oCWU=  (javaupdate.exe)

 
Latest 30 of 60 download URLs

The following 4 files have been seen to comunicate with secure-dl.com in live environments.

TCP » 50.63.202.47:80
online-guardian-v2.0.9.exe

TCP » 50.63.202.47:80
online-guardian-v2.0.9.exe

TCP » 50.63.202.47:25
wrk.exe

TCP » 50.63.202.47:80
produpd.exe (produpd.exe by Vested Development, Inc)

URL:
http://secure-dl.com/

Web server:
Microsoft-IIS/7.5 (ASP.NET) (Version: 4.0.30319)

protect-dl.co

1clickmoviedownloader.com

blue1211.info

cancellationfinder.co.uk

chipoutput.info

down1226tech.info

downloadbrowser.me

downloaddads.com

downloaddamp.com

downloadserver518.com

file11desktop.com

hopega.info

jzip-download.com

sad1209.info

sandrasoft.com

skyfast.com

soft16.org

sveskasoft.net

tk6k.com

videodownloadstudio.com

wqdl3.org

zfiramnel.info

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.